New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ssl.h: spelling in comment #1275
Closed
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
+1 |
levitte
pushed a commit
that referenced
this pull request
Jul 1, 2016
Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #1275)
richsalz
added
the
approval: done
This pull request has the required number of approvals
label
Jul 1, 2016
pushed at 533bf1d thanks! |
jens-maus
added a commit
to jens-maus/amissl
that referenced
this pull request
Oct 19, 2016
2f554ef Prepare for 1.1.0-pre6 release a3507a1 make update c98740f Fix date in CHANGES 790555d Don't check any revocation info on proxy certificates ea24fe2 INSTALL: Make the use of [, ], { and } consistent and explain it d178ddb INSTALL: Add missing details on VMS installation results 9ad7f6c VMS: make sure to provide an absolute source directory for pod2html fa849d7 VMS: If configured no-shared, don't provide shareable image logical names 56f9953 Check for overlows and error return from ASN1_object_size() e9f1709 Check for overflows in ASN1_object_size(). f37c159 80-test_ssl_new.t: only skip on $no_tls if no other skip conditions defined f4947bf In 80-test_ssl_new, more "plan tests" to a more useful position ee94aee Fix tests for no-nextprotoneg 700b814 Fix some style issues... cb926df Don't overwrite existing installed openssl.cnf 66c2eb8 All of ssldirs installation should be done by the install_ssldirs target 255af26 Some minor tweaks to the fuzzing docs c2e888b Document certificate and CRL time functions. b26ab17 Constify some X509_CRL, X509_REQ functions. 67302ad Constify some X509_CRL functions. 10b0b81 make update 5d8d9a8 Add DSA_bits() function. 6c1f368 Fix typo of BN_zero() ef8938c Forgotten make update 3c85377 Const the ex data stuff too to fix warnings 4a9a0d9 Const EC_KEY_dup 505aee2 Additional CMS content types from RFC 4073, RFC 5083, and RFC 5084. 0930e07 Useless allocation fd4b0c0 Fix some style issues 55b09fe Add missing help string 70c4e15 Fix some awkward tests 5f986ed Merge some conditional blocks of code. 4d82c58 Simplify default inits, add const qualifiers Simplify some loops to reuse k variable 8829ce3 Cast to right type, simplify array args 3331e43 Fix sharing of two static variables c5baa26 ECDH test is only one operation to run 19075d5 Fix three missing global declarations. 2a600d7 Fix return values of do_passwd() in apps/passwd.c febb096 Fix bad result in i2b_PVK() 1e7c159 Fix param order in RSA_get0_key 68e71e9 Include what we use. 3260adf peer_tmp doesn't exist if no-ec no-dh. 620c6ad Fix various no-*s. 087d3e8 crypto/ui/ui_openssl.c: UTF-y Windows code path. 4e155ec apps/openssl.c: UTF-y Windows argv. e72769a Configurations/00-base-templates.conf: harmonize BASE_Windows. 9c7ce40 Configurations/unix-Makefile.tmpl: add LC_ALL=C to unify messages. abdb460 evp/bio_enc.c: perform enc_read operation without using overlapping buffers. 382bb0b test/smcont.txt: trigger assertion in bio_enc.c. 83151b7 evp/evp_enc.c: make assert error message more readable and add EVPerr(PARTIALLY_OVERLAPPED) e1f0230 Fix the docs too 22293ea Ignore the serial number for now and just do the rest. 1421aea Make some more X509 functions const. e5452d4 rsa.c: fix incorrect guard for pvk-* options 58c27c2 Fix crash as a result of MULTIBLOCK 0fae815 Fix bogus warnings 44c248b print out MAC algorithm e032117 Fix CRL time comparison. e040a42 Update the SSL_set_bio()/SSL_set0_rbio()/SSL_set0_wbio() docs 65e2d67 Simplify and rename SSL_set_rbio() and SSL_set_wbio() 9a71698 Add some SSL BIO tests b46fe86 Fix BIO_pop for SSL BIOs eddef30 Fix BIO_push ref counting for SSL BIO 8e3854a Don't double free the write bio 7fb4c82 Add a test for SSL_set_bio() 0647719 Make the checks for an SSLv2 style record stricter 1a62777 Various doc fixes. 29df306 Add memory sanitizer config, and run on travis. 976ef6a Note cipher BIO write errors too. e125c12 Use sk_CONF_VALUE_pop_free in do_ext_nconf error path. abdb0c7 Skip non-existing files. 5a3a546 Add Hurd shared extension 1abd292 RT4639: Typo when -DSSL_DEBUG ee6ce5c Set error if EVP_CipherUpdate fails. ba1a1c3 Deprecate X509_LU_FAIL, X509_LU_RETRY 0946a19 Use X509_LOOKUP_TYPE for lookup type consistently. 4c4a2f6 Move X509_LU_RETRY, X509_LU_FAIL fc9d1ef Remove current_method from X509_STORE_CTX 61d81f0 Update the example in proxy_certificates.txt 9d7bfb1 Discard BIO_set(BIO* bio) method 78a01b3 zero pad DHE public key in ServerKeyExchange message for interop fe0169b Make it possible for external code to set the certiciate proxy path length 3067095 Add X509_STORE lock and unlock functions c1b4fa6 make update 0e82e0e Document the X509_STORE and X509_STORE_CTX setters and getters 0a5fe2e Add setter and getter for X509_STORE's check_policy 1060a50 Add getters / setters for the X509_STORE_CTX and X509_STORE functions d49cfa3 RT4627: Doc patch: fix constant names 1e4c66f explicit init ceab33e Typo and comment fix fefa4d5 Unused variable, and cleanups 5f7d512 Unused variable cleanup 55e0d0b Discard a dead option 67c93e6 Discard some unused typedefs c7d13c1 Constify X509|X509_CRL|X509_REVOKED_get_ext 7569362 Constify ... X509|X509_CRL|X509_REVOKED|_get_ext*() fdaf7be Constify ... 84de54b Constify (X509|X509V3|X509_CRL|X509_REVOKED)_get_ext_d2i ... a6a283b Constify i2s_ASN1_INTEGER, X509V3_get_d2i 333ed02 Constify input parameters of methods : d3d5dc6 Enforce and explicit some const casting e83f154 Constify i2t_ASN1_OBJECT, i2d_ASN1_OBJECT, i2a_ASN1_OBJECT. dbf89a9 Constify ASN1_buf_print 08275a2 Constify ASN1_TYPE_get, ASN1_STRING_type, ASN1_STRING_to_UTF8, ASN1_TYPE_get_octetstring & co... 0aa25a6 Constify SXNET_add_id_* 25d57dc Constify EC_KEY_*_oct2priv() input buffer c17dd59 Constify CMS_decrypt_set1_key input buffer b4bb825 Constify engine/eng_cnf.c internal method. 80f397e Fix no-tls1_2 3e82ae5 Fix no-dtls* 49dadc1 Fix no-ct c1054bb Add EVP_ENCODE_CTX_copy 47d96bc Add missing X509_set_proxy_flag num f46c259 Properly initialise the internal proxy certificate path length cache 9961cb7 Make it possible for external code to flag a certificate as a proxy one. 8b9546c Correct misspelt OPENSSL_NO_SRP 626aa24 Use newest CRL. 31a7d80 Send alert for bad DH CKE 0ed26ac Fix OOB read in TS_OBJ_print_bio(). d0c4415 SSL tests: compress generated output a little d972af2 Make boolean SSL test conf values case-insensitive bd19d1a Clarify digest change in HMAC_Init_ex() 3770b87 Add mask for newly created symlink. ee8f785 Check suffixes properly. f22ff0e use correct name for duplicate 912c258 Have load_buildtin_compression in ssl/ssl_ciph.c return RUN_ONCE result 82c78ee VMS: Rearrange installation targets for shared libraries 11279b1 Test client-side resumption 2980ae2 Add all publicly avaiable asn1 types to the asn1 fuzzer. 1618679 Cast to an unsigned type before negating 69588ed Check for errors allocating the error strings. 8cc44d9 Don't allocate r/s in DSA_SIG and ECDSA_SIG 36b5372 Install shared libraries in runtime install 1bcb2b3 VMS: fix typo, shared libraries have the extension .EXE, not .OLB 2e7dc7c Never expose ssl->bbio in the public API. 590ed3d SSL test framework: port resumption tests 23dd0c9 fix crypto-mdebug build 2f8e53d Fix if/for/while( in docs e8aa8b6 Fix a few if(, for(, while( inside code. c106eaa Remove reduntant X509_STORE_CTX_set_verify_cb declaration 7606c23 Simplify buffer limit checking, and reuse BIO_snprintf returned value. edbff8d Code factorisation and simplification f6c460e Fix double calls to strlen cdd202f Simplify code related to tmp_email_dn. 1c72f70 Use more X509_REQ_get0_pubkey & X509_get0_pubkey 415e7c4 OCSP_request_add0_id() inconsistent error return 52eede5 Sanity check in ssl_get_algorithm2(). fb93398 Send alert on CKE error. 2a5f907 Resolve over command syntax error which causes 'make install' to fail 0a52285 Document the slight change in CRYPTO_mem_ctrl() c1c2666 Document the slight change in ERR_get_next_error_library() 963f043 make update c2e4e5d Change all our uses of CRYPTO_THREAD_run_once to use RUN_ONCE instead 925d17f Define a few internal macros for easy use of run_once functions aebb9aa RT4593: Add space after comma (doc nits) d6accd5 Fix forgotten goto df0aa77 Fix building with no-cms 642a166 Convert the last uses of sockaddr in apps/* to use BIO_ADDR instead 70c2288 Fix two bugs in clienthello processing ce2cdac SSL test framework: port NPN and ALPN tests 02f730b Cleanup after sk_push fail 4fa8886 Update error codes following tls_process_key_exchange() refactor e1e588a Tidy up tls_process_key_exchange() ff74aeb Split out ECDHE from tls_process_key_exchange() e01a610 Split out DHE from tls_process_key_exchange() 25c6c10 Split out SRP from tls_process_key_exchange() 7dc1c64 Split out the PSK preamble from tls_process_key_exchange() 02a7459 Move the PSK preamble for tls_process_key_exchange() be8dba2 Narrow scope of locals vars in tls_process_key_exchange() eaa776d Add more session tests e4612d0 Remove sessions from external cache, even if internal cache not used. 941b10b Have the Travis builds do a "make update" bbba0a7 make update 340a282 Fixup a few SSLerr calls in ssl/statem/ 384a5d2 Fixup collision between SSL_F_TLS_PROCESS_SKE and SSL_F_TLS_PROCESS_CKE macros ad72d9f Check and print out boolean type properly. e3ea3af Refactor Identity Hint handling 05ec6a2 Fix up error codes after splitting up tls_construct_key_exchange() a7a7522 Some tidy ups after the CKE construction refactor 840a2bf Split out SRP CKE construction into a separate function e00e0b3 Split out GOST CKE construction into a separate function 67ad5aa Split out DHE CKE construction into a separate function a8c1c70 Split out DHE CKE construction into a separate function 13c0ec4 Split out CKE construction PSK pre-amble and RSA into a separate function 0bce0b0 Narrow the scope of local variables in tls_construct_client_key_exchange() d4450e4 Fix bug with s2n et al macros c76a4ae Errors fix up following break up of CKE processing 9059eb7 Remove the f_err lable from tls_process_client_key_exchange() c437eef Split out GOST from process CKE code 19ed1ec Split out ECDHE from process CKE code 642360f Split out DHE from process CKE code 0907d71 Split out PSK preamble and RSA from process CKE code bb5592d Reduce the scope of some variables in tls_process_client_key_exchange() 1e3d16b Don't make a difference between building test programs and other programs 7218ae5 Use _NO_INST in some build.info files 0f01b7b Adapt the build files to the new "install" hash table 52fef27 Document the _NO_INST variants 7f5af79 build.info: implement PROGRAM_NO_INST, and dito for ENGINES, SCRIPTS, LIBS 3cea73a Fix print of ASN.1 BIGNUM type. 23dd09b Fix formatting in statem_srvr.c based on review feedback eb5561c Ensure Travis tests SSLv3 0f51275 Try and make the transition tests for CKE message clearer 7d2c13a Simplify key_exchange_expected() logic 1b5c44b Fix client auth test_ssl_new failures when enabling/disabling protocols 149c2ef Make sure we call ssl3_digest_cached_records() when necessary 672f333 Fix SSLv3 alert if no Client Ceritifcate sent after a request for one 10e6d23 Fix SSLv3 ClientAuth alert checking 78cbe94 Fix Client Auth tests 05c4f1d Prepare the client certificate earlier 3c49b2e Fix mingw build 33e49fd Fix strict-warnings build 9515acc aes/asm/aesfx-sparcv9.pl: switch to fshiftorx to improve single-block and short-input performance. 8604a6e SPARC assembly pack: enforce V8+ ABI constraints. 365f95a evp/e_aes.c: wire new CBC and CTR subroutines from aesfx-sparcv9. d41de45 aes/asm/aesfx-sparcv9.pl: add "teaser" CBC and CTR subroutines. e10aeee fuzzers: print and convert it back 5e3553c Return error when trying to print invalid ASN1 integer 85afea6 INSTALL: clarify --cross-compile-prefix. 1fa0e5f crypto/LPdir_win.c: rationalize temporary allocations. 46ea8e6 crypto/LPdir_win.c: harmonize with o_fopen.c. 878f422 Make fuzzer and fuzz tester builds less magic 563c1ec fix memory leaks 28e90f6 Remove the silly CVS markers from LPdir_*.c 42306f9 Add back lost copyright and license text in LPdir_win.c 8918a95 Fix: dummy definition of rand_hw_seed() should also return int b8a7bd8 Fix ASN.1 private encode of EC_KEY to not change the input key d166ed8 check return values for EVP_Digest*() APIs 1fc431b Windows: allow input and output flags to end with a space, or not 9c94044 crypto/x86[_64]cpuid.pl: add OPENSSL_ia32_rd[rand|seed]_bytes. b1837ab Small fixes in unix-Makefile.tmpl 24c4f73 Install applink.c with the public header files. 755542c Windows: take care of manifest files d701504 make update 02fb7cf Add OCSP accessors. e99ab8f Fix DH error-handling in tls_process_key_exchange. 3307000 Make update 5ae4ceb Perform DANE-EE(3) name checks by default d83b7e1 Extend mkcert.sh to support nameConstraints generation and more complex subject alternate names. 4b0907e make update 5bd5dcd Add nameConstraints commonName checking. 1d03b7b Don't rely on implicit rsa.h inclusion 7498162 VMS: Adjust the engines directory by adding the pointer size to its name 9481a30 VMS: Small cleanups 16dc790 VMS: OSSL$EXE: needs to reflect that programs are installed in two places 1c45070 VMS: Document the changed logical names in VMS/openssl_staryup.com.in afea006 VMS: Present OPENSSLDIR according to the VMS setup. a90f8d7 VMS: Simplify the spec of the default certs & keys area. 7304e32 Update ordinals cc75cbc Platform sanity test 54478ac GH1278: Removed error code for alerts 91da5e7 Replace all #define's in pod pages. 07aaab3 VMS: openssl_ivp must call versioned openssl_startup and openssl_utils 4bbd4ba Disallow multiple protocol flags to s_server and s_client 3503549 Unix: Set the execute permission on installed shared libraries 27f215c Reorganize .gitignore to make better use of its features f1f5ee1 include/openssl: don't include <windows.h> in public headers. ab6a591 Support PKCS v2.0 print in pkcs12 utility. e78884d VMS: correct post-install instructions 3ffb060 Windows: make some vars in windows-makefile.tmpl reachable again 794ad95 VMS: defined the logical name OPENSSL at all times e8fb129 Versioning engines default location: the VMS case b2de11c Versioning engines default location: the Unix case ee0a61c Versioning engines default location: the Windows case d20841c Add OPENSSL_NO_EC wrapper 8478a70 Make 'build_libs' build shared libraries as well b385889 Don't indicate errors during initial adb decode. e45c78f VMS: make sure there's a file extension when creating files 5aa8096 VMS: arch in config.com was mistakenly made process global 85cdc84 make update 5534c16 Stop using and deprecate ENGINE_setup_bsd_cryptodev b77a865 Fix mem error handling in PKCS7_simple_smimecap 4aed875 Improve some error management code in CT e57036f Fix some memory error handling in CT 68efafc Add checks on sk_TYPE_push() returned value c2d551c Reorganise asn1.h and add comments. 31b15b9 Update fuzz/README.md d513369 perl: Separate compile-time environment from runtime environment 9d6daf9 Fix broken loading of client CAs 3426de2 VMS: Add installation verification procedure d17d329 Fix some VMS inconsistencies dbb3aba Install the openssl app with version number on VMS 8842005 Have the VMS shared library file names contain the shared version 34d5490 Pass down correct information to the VMS startup script templates 7878e53 Add the missing pointer_size information on VMS configs 27c40a9 Ensure that global dependencies are built first, even for parallell builds fe964f0 Use the SSL_METHODs passed to create_ssl_ctx_pair() 1e16987 Avoid an overflow in constructing the ServerKeyExchange message 43cb309 Cleanup obj_dat.h, obj_dat.pl 15a1f19 Deal with pod2html issues, in this case the lack of .html suffix in links 0483f58 Simplify INCLUDE statements in build.info files 4748f89 Make build.info INCLUDE stmts be both source and build tree relative 352dbba fix 'set but not used' warning a05b0bc Re-add x509 and crl fuzzer dd850bc Add old locking constants back 453bff2 Make CRYPTO_num_locks() return 1 152d264 fix code formatting 0a1d3a8 add return value for expand a66069d Fix printing private EC_KEY 533bf1d ssl.h: spelling in comment Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1275) 90d28f0 Run the fuzzing corpora as tests. 2c12f22 SPARC assembly pack: enforce V8+ ABI constraints. f198cc4 SPARC assembly pack: enforce V8+ ABI constraints. 0685b15 Windows: Recreate the $prefix variable c0c9c0c Constify a bit more OPENSSL_sk_ API 7e1445b Use directly zalloc in OPENSSL_sk_dup and OPENSSL_sk_deep_copy 3ce2fda Convert memset calls to OPENSSL_cleanse 6f4ae77 Cleanup documentation for removed functionality fb5b14b Add some compat macros for removed tmp RSA functions/macros 8a3c000 Fix hmac test case 6 6f60a5a Restore clang builds in travis.yml 8e21938 Remove the envvar hack to enable proxy cert processing 6b4a77f Whitespace cleanup in apps 0485d54 Whitespace cleanup in ssl folder 02e112a Whitespace cleanup in crypto 0517ffc Whitespace cleanup in docs 9d22666 Spelling cbddeeb Some interfaces may have IPv6 addresses even if an IPv6 address is not "configured on the local system". Whatever that means. Example that is biting me is loopback has ::1 as an address, but the network interface is v4 only. 03cb37a Add comment about X509_print d2b23cd SSL test framework: port SNI tests 2cdce3e base64 macro: parenthesize for clarity b8bbd8b Windows: Make DESTDIR work 850000a Build files: don't generate empty action lines in generatedir() 57ade57 Use include paths to our source before any other cflags 7a53360 engines/e_capi.c: accommodate recent DSA_SIG_[get|set]0 changes. e0685d2 rsa/rsa_lib.c: const-ify RSA_get0_engine(). dbbb6a8 unix-Makefile.tmpl: omit lib<rary>.a updates from directory targets. cfef7e9 windows-makefile.tmpl: don't use $? in library targets. c3fd55d Add a test for fragmented alerts 63916e9 Ensure read records are marked as read 6f4a6a5 RT4586: Remove RSA_memory_lock; unused, not needed 56add33 Fix one more instance of incorrect OPENSSL_API_COMPAT value 1aca361 Fix some OPENSSL_API_COMPAT values cd359b2 Clarify use of |$end0| in stitched x86-64 AES-GCM code. 0b919cc Configurations/10-main.conf: fix PA-RISC commentary. 5fc7768 evp/evp_enc.c: refine partial buffer overlap detection. c3a73da evp/evp_enc.c: check for partially[!] overlapping buffers in EVP_EncryptUpdate and EVP_DecryptUpdate. It is argued that in general case it's impossible to provide guarantee that partially[!] overlapping buffers can be tolerated. dca5eeb RT2680: Public EC key is shown as private 5d28ff3 RT2964: Fix it via doc c32bdbf Revert "RT2964: Fix it via doc" 82f31fe RT2964: Fix it via doc d70a562 Handle BN_mod_word failures. 748e853 Fix BN_is_prime* calls. f08c8c1 Add x509 and crl corpora e1859d8 Add X509 and CRL fuzzer 3b5bea3 Add -ciphers flag to enc command 67b8bf4 perlasm/x86_64-xlate.pl: address errors and warnings in elderly perls. 8f3bc09 ./config: minor cleanup. c5c0cac ./config: detect x32-only environment. 3b92e51 Teach EVP_PKEY_HMAC keys how to EVP_PKEY_cmp() 5bea15e Avoid signed overflow 24bf6f3 Deal with API changes. 0def528 Ensure HMAC key gets cleansed after use 827d17f Add some documentation for missing HMAC functions a621181 Add a getter to obtain the HMAC_CTX md d6079a8 Fix ASN1_STRING_to_UTF8 could not convert NumericString 51a3b76 Make x25519_compute_key() return a boolean 65ea288 Make ossl_ecdh_compute_key() return a boolean 70a56b9 utils/mkdir-p: check if dir exists also after mkdir failed fe2d149 RT2867: des_ede3_cfb1 ignored "size in bits" flag 615dd78 Drop extraneous printf argument in mkcert.sh d0ba311 Update fuzz corpora 3c82e43 Add checks on sk_TYPE_push() returned result 687b486 Rework error handling from asn1_do_lock method. b58614d Fix generation of expired CA certificate. 768a3ec OpenSSL::Test: Fix directory calculations in __cwd() fc6076c rand/randfile.c: make it non-ASCII-savvy. 0948781 Move OS-specific fopen quirks to o_fopen.c. eeac54e crypto/cryptlib.c: omit OPENSSL_ia32cap_loc(). f430ba3 Spelling... and more spelling 1d8b4eb segmentation fault with 'openssl s_client -prexit -keymatexport' 5388b8d Avoid creating an illegal pointer. 5b8fa43 Make RSA key exchange code actually constant-time. 01238ae buf2hexstr: properly deal with empty string 28bd8e9 Fix typo 14c4201 Appveyor: test install as well, via a fake deploy_script a3414dc Travis: When testing install, install docs as well 3da9eeb OpenSSL::Test: Fix directory calculations in __cwd() c952780 More doc cleanup 6feb3c5 Avoid using latest clang since repo not available abeae4d Make arm-xlate.pl set use strict. aa951ef Add verification of proxy certs to 25-test_verify.t 8dfb202 Create some proxy certificates 71c8cd2 Make it possible to generate proxy certs with test/certs/mkcert.sh d0ba7bc make update a392ef2 Allow proxy certs to be present when verifying a chain ed17c7c Fix proxy certificate pathlength verification c822353 Check that the subject name in a proxy cert complies to RFC 3820 54f24e3 RT3925: Remove trailing semi from macro 14d3c0d apps/req.c: Increment the right variable when parsing '+' 5e6e650 Remove pointless free loop in X509_TRUST_cleanup() fa3a028 Remove pointless free loop in X509_PURPOSE_cleanup() 14f4656 doc and comment fixes b88e95f crypto/evp/e_aes_cbc_hmac_sha256.c: Remove spurious memset fb0303f RT3136: Remove space after issuer/subject 9267c11 Make DSA_SIG and ECDSA_SIG getters const. b73cfb1 rand/randfile.c: remove obsolete commentary. 876a1a8 Tests should check validation status directly 4fc31f7 Test SCT lists 4973a60 aes/asm/bsaes-armv7.pl: omit redundant stores in XTS subroutines. 3d32bab aes/asm/bsaes-armv7.pl: fix XTS decrypt test failure. 2be7014 Change the RAND_file_name documentation accordingly b8f304f Change default directory for the .rnd file on Windows and VMS a8db2cf Add a comment after some #endif at end of apps source code. 823146d Useless header include of openssl/rand.h 93b8981 Useless includes 5ab0b7e Missing NULL check on OBJ_dup result in x509_name_canon b1b1cba Fix an MSVC warning. 1dcb8ca Use a STACK_OF(OPENSSL_CSTRING) for const char * stacks 6b44f25 OpenBSD has intypes.h d012c1a Replace 4 casts with 1 ac94c8f Improve const correctness for stacks of EVP_MD 98370c2 constify SRP 7fb4b92 Avoid type punning warnings in b_addr.c 13c03c8 Change default directory for storing the .rnd file on Windows 4813ad2 Harmonise the different build files d3b64b8 Fix GCC build; make update; fix number re-use 0ad69cd Spelling fixes 2b1343b no-ripemd is an alias for no-rmd160 7f96f15 Fix build break. ebad0b0 Add EVP_PKEY_get0_hmac() function f219a1b Revert "RT4526: Call TerminateProcess, not ExitProcess" b02b574 Skip the TLSProxy tests if environmental problems are an issue b84e122 Fix the build and tests following constification of DH, DSA, RSA cf3404f Change the return type of EVP_EncodeUpdate 2ac6115 Deal with the consequences of constifying getters fd809cf Constify the parameter getters for RSA, DSA and DH 9c1a9cc RT4526: Call TerminateProcess, not ExitProcess c8f717f Constify input buffers of some X509V3 and X509_PURPOSE -related methods 8264325 Constify X509_TRUST_add method. bd22745 Constify asn1/asn_mime.c fa3a844 Constify some input buffers in asn1 dc423f8 Constify CMS_get0_type input 472f727 Constify UI 82af00f Constify PKCS12_create, PKCS12_add_key, PKCS12_add_safe. 159b9a4 Constify some conf_mod.c internal methods fdcb499 Change (!seqtt) to (seqtt == NULL) bace847 Always check that the value returned by asn1_do_adb() is non-NULL 4e3d286 perlasm/x86*.pl: add endbranch instruction. cc77d0d modes/asm/ghashp8-ppc.pl: improve performance by 2.7x. 627c953 aes/asm/aesp8-ppc.pl: implement "tweak chaining". 74daca7 test/evptests.txt: add more XTS tests. 46f047d evp/e_aes.c: wire hardware-assisted XTS subroutines. b53d325 aes/asm/aesp8-ppc.pl: add XTS subroutines. a15cfae (Temporarily) don't download clang package 1eb12c4 perlasm/x86_64-xlate.pl: add commentary. 6a4ea00 perlasm/x86_64-xlate.pl: refactor argument parsing loop. c25278d Make x86_64-xlate.pl 'use strict' clean. b867c70 VMS: use BLDDIR rather than BUILDDIR in descrip.mms.tmpl 932eaf0 Add a developer target 'build_generated' to rebuild mandatory headers 7cae386 Build file templates: make sure to depend on generated header files 27ffb86 Move the Configure generated header files to the top build.info 4f85829 Configure: Make it possible to generate mandatory header files 7c46746 Fix omitted selector handling. 2dca984 Update fuzz corpora 947f315 Initialize the session_id b2e8bd7 Remove an unused variable assignment cda3ae5 RT4562: Fix misleading doc on OPENSSL_config 036e61b Free memory on an error path d285b54 Avoid a double-free in crl2pl7 a45dca6 Add missing break statement e7653f3 Fix comment 5ec84dd make update a8c82fa Shorten some symbol names 35096e9 GH1141: Different fix, preferred by Richard. b4b576d RT3454: Re-enable nistp-64_gcc_128 on windows 96d06c2 Missed some copyright merge bbaa9dd Ensure that NULL r and s parameters cannot be set on DSA_SIG/ECDSA_SIGs. 1d454d5 Forgot to update the setter argument ordering in the public headers. 7ca3ea2 Reorder the setter arguments to more consistently match that of other APIs, per review comments. 6a571a1 Implement DSA_SIG_set0() and ECDSA_SIG_set0(), for setting signature values. d356dc5 Add some missing return value checks c887104 Update sslapitest to use the test framework ec02df8 Update the SSL_set_session() documentation 2cb4b5f Add some session API tests e70656c Ensure SSL_set_session clears the old session from cache if it is bad b029298 SSL test: only write out server2 when testing SNI 25b9d11 Handle inability to create AFALG socket 7472675 Port DTLS version negotiation tests 81fc33c Clean up following new SNI tests a7be575 RT3809: basicConstraints is critical 7d62840 bn/bn_add.c: favour counted loops over ifs and breaks. 2ac68bd doc/crypto/OPENSSL_ia32cap.pod update. 6ec6d52 Don't skip leading zeroes in PSK keys. a3ef2c1 RT2759: Don't read TTY when already at EOF. 7315ce8 Avoid memory leaks if options repeated. 6b36028 RT3053: Check for NULL before dereferencing 6d6e807 Ensure that the EVP_MD_meth_new docs properly match the declared functions; it looks like these names have shifted a little over time. f3cf225 Avoid creating illegal pointers 0a32065 include stdlib for malloc() and free() 325cfa8 Don't compare a just free()d pointer 4b68cb4 Specify array sizes 8c918b7 Avoid creating an illegal pointer. 3892b95 Avoid creating an illegal pointer 5000a6d Fix an error path leak in int X509_ATTRIBUTE_set1_data() 8605abf Fix an error path leak in do_ext_nconf() e68a780 Fix seg fault in TS_RESP_verify_response() 73159f4 Fix no-dtls* builds f5de06a Expand SSL_CTX_set_default_verify_paths() documentation fe08bd7 GH1183: Fix -unix and -connect, etc., override a1bce64 Omit corpora from tarball. d4a28f9 Make corpora binary. ff2c608 Add fuzz corpora. 4f6eaa5 RT3720 Increment session miss counter properly 1e2012b RT 4242: reject invalid EC point coordinates 6670d55 Make a2i_ipadd an internal function 8162f6f More API docs; small changes. 5393482 Clean up "generic" intro pod files. 12ce9ea Write X509_dup, PEM_read, etc. dc567f6 Docs: install generic manpages to man section 7 85cbc18 hmac/hmac.c: fix sizeof typo in hmac_ctx_cleanup. 5c753de Fix session ticket and SNI 2a7de0f Fixes to get -ansi working e417070 Add some accessor API's 01d0e24 crypto/x509/x509_vpm.c: Simplify int_x509_param_set1() e2bb9b9 Always use session_ctx when removing a session 77a795e Fix some typos in pod files ab68742 Ignore tsget.pl and c_rehash.pl, as well as other compiler generated files 4f0c475 Add empty record tests 255cfea Reject out of context empty records 0aac3a6 Fix pipelining bug f44310e Add a BN_mod_word test() 37258da Fix BN_mod_word bug 4692340 Unify d2i/i2d documentation. fbba5d1 Nit about pod filenames a9da481 Fix potential access of null pointer (pp) 8f09ba4 Add an SSL get/set test 2435834 Add documentation for the newly added SSL_get_tlsext_status_type() 30b9676 Add SSL_CTX_get_tlsext_status_type() 93a9d59 Return the value of tlsext_status_type in the return not arg 4300aaf Add SSL_get_tlsext_status_type() method 56989dc Fix some GitHub issues. 47ae05b Set flag BN_FLG_CONSTTIME earlier 033dc8f Remove kq and set BN_FLG_CONSTTIME in k for BN_mod_inverse 35ea640 Add script to find undocumented API c796e02 Document the issue with threads and dlopen() bb9ad09 More doc nits 497e986 NOTES.WIN: use secure urls Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1175) 81b538e tests: fix the shutting up of the shell ec772a8 Fix the directory target generation 5584f65 Deprecate the flags that switch off constant time f943e64 Simplify dsa_ossl.c 3999446 Fix DSA, preserve BN_FLG_CONSTTIME 0a4c87a s390x assembly pack: improve portability. 78e9158 tests: Shut the shell up unless verbose 35d2e32 Remove extra include's in synopsis. 65cc6d5 Configure: complete the changed fuzz option checks 501d53c Silence misleading test_abort stderr output 3470795 Constify X509V3_EXT_*_conf* 009951d Constify ASN1_generate_nconf 12eaf3b Constify ASN1_generate_v3 13f74c6 Constify s2i_ASN1_IA5STRING 2b91da9 Constify s2i_ASN1_INTEGER 7d7da28 Constify X509_OBJECT_get_type & X509_OBJECT_get0_X509 a9936b5 Clean away the last unixmake vestiges d485806 Fix re-used function code e8e36da Ignore buildtest artifacts. 0ad1d94 Add developer targets for each subdirectory we have something to build in 578b551 Specifiy size of arrays bd95d64 Check for overflows in EOC. f59d013 Add support for fuzzing with AFL 255cf60 RT3895: Remove fprintf's from SSL library. 843666f More utils cleanup. e2ec733 Make 25-test_gen.t and 25-test_req.t into one c9d2437 Have some more test recipes clean up after themselves 6715281 Windows build: Remove .manifest files in test/ as well f6ce429 Change inclusion of sys/types.h to stdlib.h in include/openssl/ebcdic.h 2d5724a Add inclusion of stdlib.h in include/openssl/mdc2.h e30dff9 Add inclusion of openssl/x509.h in include/openssl/tls1.h bffb149 Generate simple build test files 39a4700 Fix documentation error in x509 app certopt flag 416a5b6 BIO_printf() can fail to print the last character 93879f8 cryptodev_asym, zapparams: use OPENSSL_* allocation routines, handle errors 2c4a056 Handle a memory allocation failure in ssl3_init_finished_mac() fa28bfd Update INSTALL instructions 6191fc8 Added define for STATUS_SUCCESS e56f956 Adds casts for 64-bit 0814afc Define USE_BCRYPT fa64e63 Use BCryptGenRandom on Windows 7 or higher 49c2a00 Add a paragraph on documentation to CONTRIBUTING 4d6013c Further update CONTRIBUTING 073b1b7 Tweaks to NOTES.PERL 8c4f803 Update NOTES.WIN 75737d4 Update CONTRIBUTING 26dee42 Bring the README file up to date 7d6df9e Fix threading issue that at best will leak memory b38c43f tests: clean up temporary SSL session files. 4a2c4c1 Add ct fuzzer. 75a1122 Linkify libfuzzer. e298cb1 Fuzz everything with every input. e78fade Sort. 6393611 Update client authentication tests 66bceb5 chacha/chacha_enc.c: harmonize counter width with subroutine name. b1ffe8d GH1123: sort dir before rehash 6616429 Build the 'openssl rehash' command on VMS version 8.3 and up 02d6070 Fix test failures when using enable-ubsan 03b8981 Tidy up OCSP print handling. ee2c1a2 perl: refactor .pod name section extractor into its own module 8d054a5 Add a warning about using enable-crypto-mdebug-backtrace a182e54 Testing symbol presence: also take note of small objects ade8283 Remove NOEXIST entries 723412d Don't leak memory on set_reasons() error path 137e555 Don't leak memory on int X509_PURPOSE_add() error path 4232810 Don't leak memory on X509_TRUST_add() error path 69e2bd3 Don't leak memory on ASN1_item_pack() error path fe71bb3 Don't leak memory on ASN1_GENERALIZEDTIME_adj() error path 379a8ed Don't leak memory in v2i_POLICY_MAPPINGS() on error path 6eb311e Don't leak memory from notice_section function on error path 97323d5 Don't leak memory in v2i_AUTHORITY_KEYID 1c42216 Fix memory leak in crl2pkcs7 app a855d1a Free a temporary buffer used by dsaparam application b0cb22b Free buffer on error in a2i_ASN1_INTEGER() 6e4ab54 Free memory on error in cms app 0e9eb1a Free tempory data on error in ec_wNAF_mul() ff3bb91 Fix nits in crypto.pod,ssl.pod 0634424 Fix various doc nits. b8a9af6 Remove/rename some old files. 44c8a5e Add final(?) set of copyrights. 0f91e1d Fix some RAND bugs f83b85f Ensure an ASN1_OBJECT is freed in error paths 7b0ee13 Free allocated password strings on exit a3768e0 Free a BIO_ADDR if DTLSv1_listen return <=0 5bf7c77 Ensure BIGNUM is freed in an error path fe2b7df Free an X509_CRL in an error path 0461b7e Don't leak X509_OBJECT in an error path 6493e48 RT4337: Crash in DES 1d54ef3 Fix printing of DH Parameters eeb2177 Add dhparam sanity check and update DH_check documentation b2b361f Raise an Err when CRYPTO_THREAD_lock_new fails 57358a8 req command incorrectly displays the bits for an EC key e51329d OpenBSD doesn't have ucontext.h so don't try and include it befe31c make update af9895c Updates from review Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> b01e164 Fix: PEM_read_bio_PrivateKey with no-ui / no-stdio 80c630f Remove null check, per review feedback. Note this in the docs. 7327129 Add requested HISTORY section, remove copy/pastos, per review feedback. bd01f64 Add an SSL_SESSION accessor for obtaining the protocol version number, with accompanying documentation. 6d1e770 RT4539: Add section for renamed ciphers. dab1f5f speed.c: fix segfault with unrecognized algorithms f72f00d Parameter copy sanity checks. cc7113e return error in ct_move_scts() a7cbe96 Travis: update sanitizer configs 8d95ca3 Fix strdup macro redefinition 23049aa perl: use the 'if' module to conditionally load File::Glob 453fc7a Make sure max in fmtstr() doesn't overflow into negativity 6378809 set RAND_event and RAND_screen to deprecated in 1.1.0 in librypto.num d407fd2 fix deprecation version number in docs 1931a04 update docs with descriptions and deprecation 2ff3b69 fix return value in docs 7324129 add removed functions back as deprecated ad0f926 get rid of now empty #if 151a437 remove winrand.c entirely, nothing seems to reference it 6f0cc2a cherry pick pr-512 changes 42af747 get rid of unnecessary include 75dcf70 remove RAND_screen and friends 888db7f cherry pick pr-512 changes 4447d82 OR flags with CRYPT_SILENT to really make sure no UI pops up 1cd02c6 fix endif comment 1150999 remove all WINCE ifdefs eb9b92e - remove insane heap walk and kernel loading code; clean up style and calling conventions cfe1d99 x86_64 assembly pack: tolerate spaces in source directory name. 9785555 Configure,test/recipes: "pin" glob to File::Glob::glob. f59f23c Add more zalloc 8e89e85 Fix some missing inits 8640f21 poly1305/asm/poly1305-mips.pl: adhere to standard frame layout. ff823ee SPARC assembly pack: add missing .type directives. 38e19eb Change a call of OPENSSL_strcasecmp to strcasecmp da32e04 make update 7233bea Remove internal functions OPENSSL_strcasecmp and OPENSSL_strncasecmp 90edbfc include/openssl/e_os2.h: fix 'noreturn' pre-processor logic. efdb2d6 crypto/o_str.c: add _GNU_SOURCE strerror_r case. 43c4116 crypto/o_str.c: strerror_s is provided by specific compiler run-time, not by OS [as was implied by guarding #if condition]. bb83c87 bn/bn_exp.c: explain 'volatile' in MOD_EXP_CTIME_COPY_FROM_PREBUF. dae9e15 bf/build.info: engage assembly module. 369e933 Avoid calling memcpy with lenght of 0 4379d5c Fix ssl_cert_set0_chain invalid pointer 230c691 Fix fmtstr for BIO_printf() et al ac1a998 make sure to put quotes around -config argument, in case of spaces 04b7805 perl glob: make sure to put quotes around the pattern, in case of spaces cb66390 Windows makefile: handle the case with space in source directory a3a08f8 Configure: handle spaces in source directory spec cbece22 Allow space in PERL spec (unix only) 46ac07f Avoid msys name mangling cb2e10f Fix intermittent windows failures in TLSProxy tests 75dd6c1 Fix s_client/s_server waiting for stdin on Windows 384f08d Fix some s_server issues on Windows ec91f92 Silence some "may be uninitialized when used" warning f8f686e Add a test for printing floating point format specifiers 1b62d88 Prevent an overflow when trying to print excessively big floats d6056f0 Fix implementation of "e" and "g" formats for printing floating points 242073b Fix some issues in b_print.c code 5e0dc5c Update the documentation of BN_hex2bn() 58c03e3 fix BN_hex2bn()/BN_dec2bn() memory leak 753be41 Fix some suspect warnings on Windows ea32151 The ssl3_digest_cached_records() function does not handle errors properly 1d00db6 Add rfc822Mailbox to string table. dc6b5c7 Handle Visual C warning about non-standard function names. 656bbdc Configure: pull 'which' back. 02f603f Makefile.shared: revert Haiku support commit. dc9887c Avoid creating an illegal pointer 223516e Don't clean away headers generated by Configure 4639c68 Make sure crypto-mdebug-backtrace must be enabled explicitely 7030e35 build.info files: add quotes around any spec that may contain spaces ce95981 Configure: To allow file names with spaces, tokenize with respect for quotes b202bf6 Complete the list of files to clean up on Windows 05a7aee Communicate Configure generated header files to build files 73b61c7 Avoid creating an illegal pointer 0447316 GH919: Fix wrappers for two headers c01a3c6 Fix braces in e_aes.c: aes_init_key e0a675e Clean up RAND_bytes() calls 0a618df Fix a mem leak on an error path in OBJ_NAME_add() 308ff28 Fix error return value in SRP functions dae00d6 Add error return for OPENSSL_INIT_set_config_filename() 7d37818 Use strerror_r()/strerror_s() instead of strerror() where possible a93e0e7 #4342: few missing malloc return checks and free in error paths 1c7bfec Windows notes: add a few lines on gaining admin privs for installing 7285ac0 VMS: show the ossl_dataroot logical as well when doing "mms debug_logicals" 2ff4d29 Install the scripts the same way on Windows and VMS as on Unix 5f94746 Make sure tsget.pl and c_rehash.pl get installed on VMS and Windows. 34f5d44 Make sure tsget and c_rehash are named with .pl suffix on Windows and VMS 35b060f Make sure to initialize all CA.pl variables properly 050a36a Add buf-freelists to deprecated options 0cd0a82 Remove unused error/function codes. f65a8c1 Support -no-CAfile -no-CApath in ctx2 77ab2b0 remove encrypt then mac ifdefs f3fcd4d VMS: remove last VAX vestiges 6098039 make update 05dba81 Support for traditional format private keys. 07930a7 Slight cleanup of the collection of READMEs, INSTALLs and NOTES 20ab55f Remove INSTALL.WCE and refs to it. 4824410 Add text/x509aux to gitignore e5a5e3f Add checks on CRYPTO_set_ex_data return value Fix possible leak in danetest.c a98810b Fix some malloc failure crashes on X509_STORE_CTX_set_ex_data 11ed851 Fix and simplify error handling in (RSA/EC_kmeth)_new_method() aca6dae9 Remove useless NULL checks 7d52e55 Windows: shut DEL up 154fe2b Complete the rename of LHASH functions and types 398c1b7 util/process_docs.pl: Add more debugging output c4d5989 Improve the checking of pod sections beadb44 HTML docs on Unix: Add a HTML title e4860d5 process_docs.pl: When starting to read a new head1 section, remove previous text eae0292 Add a missing comma in OPENSSL_malloc.pod aec3ecd Add the missing NAME header in the OCSP docs 1544583 Avoid creating an illegal pointer acc6009 Avoid creating an illegal pointer 169a8e3 Have doc-nit-check look for mandatory manual sections 4591e5f Constify stack and lhash macros. 8bf7804 Indent and dead code cleanup 6aa36e8 Add OpenSSL copyright to .pl files 05ea606 Doc nits cleanup, round 2 fcb318c Fix Windows 64 bit crashes 739a1eb Rename lh_xxx,sk_xxx tp OPENSSL_{LH,SK}_xxx 0659376 Clean up the VMS hacks in crypto/rand/randfile.c 8ff889c VMS: setbuf() only takes 32-bit pointers d7295cd Add an async io test 1689e7e Ensure async IO works with new state machine 1257ade Tighten up logic around ChangeCipherSpec. 4641756 Simplify SSL BIO buffering logic 72106aa Fixup READLINE case 1bc7451 Fix nits in pod files. e990ec5 Use the process_docs script to install docs on Windows and VMS 2bc57c8 Documentation processor in perl, for platforms that don't have sh 2197494 Use correct EOL in headers. 6c4be50 Move Haiku configuration to separate config file to denote the fact that it's community-supported target. e33826f Add assembly CRYPTO_memcmp. 2e6d779 rand/randfile.c: remove _XOPEN_SOURCE definition. c223c4a Check that the obtained public key is valid 2ee65a6 Add copyright e2f9261 Add copyright to manpages 84e9ee1 Remove needless license terms (for docs) 99ec4fd Ensure =cut is last line in every file. e64b555 ok was uninitialised on failure. f75b34c When strict SCT fails record verification failure a5a3722 make update 6778784 Improve and document low-level PEM read routines 276fa9b Fixes non __GNUC__ compilation c9141a4 Fix SRP client key computation 291a4d9 Small typo, a tab where there should have been a space 6a6eb7a Cleanup openssl.ec 97665e1 Fix util/mkerr.pl f3e235e Ensure verify error is set when X509_verify_cert() fails 5fba391 Clarify negative return from X509_verify_cert() 8727590 Make OPENSSL_die as noreturn a37458c Document the esc_2254 command line name option 0794b6a make update bc77651 Make it possible to have RFC2254 escapes with ASN1_STRING_print_ex() 52832e4 OID code tidy up. 9e20068 Consolidate copyright for demos 569d064 Add some error messages for malloc fails 6ef020c Better checks for malloc failure in various METHOD functions 24854e0 Fix some malloc failures in b_addr.c 690b462 Add some check for malloc failure in the CAPI engine 15b083e Fix ts app help message fba1366 Locally declare some variables bde136c Few cleanups in s_client, s_server apps. d2dfd48 Fix a NULL dereference in chacha20_poly1305_init_key() b6cff31 Manual fixes after copyright consolidation 6ddbb4c X509_STORE_CTX accessors. aa6bb13 Copyright consolidation 05/10 b132225 Copyright consolidation 09/10 2039c42 Copyright consolidation 08/10 d2e9e32 Copyright consolidation 07/10 4f22f40 Copyright consolidation 06/10 6286757 Copyright consolidation 04/10 21dcbeb Copyright consolidation 03/10 440e5d8 Copyright consolidation 02/10 846e33c Copyright consolidation 01/10 be9c8de Add a comment to explain the use of |num_recs| 8aac5d2 Fix RSA dasync engine bug de0717e Use the current record offset in ssl3_get_record 6da5739 There is only one read buffer 5507b96 Fix typos in apps/enc.c Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> d4d7894 Fix some out of date comments 2647e26 Remove repeated condition from if in X509_NAME_oneline c0e32b1 Correct documentation error ff715da test/evp_test.c: exercise in-place encryption. 6133b4e ARMv8 assembly pack: add OPENSSL_cleanse. a7f9e0a Remove an unneccessary check of cipher 49445f2 Use OPENSSL_hexchar2int 589902b Use app_malloc; two missing cases. 2194351 const correctness: make HMAC_size() take a const * d139723 session tickets: use more sizeof 05df5c2 Use AES256 for the default encryption algoritm for TLS session tickets 4e2e1ec session tickets: Use sizeof() for the various fields c821def Don't load same config file twice. 727ee8c Documentation: Clarify sizes for UI_add_input_string() 6ae5452 Workaround an IO::Socket::IP bug 5c4328f Fold threads.h into crypto.h making API public b160f28 Don't require any length of password when decrypting 8f41ff2 Add support for RC / WINDRES env variables 3c01ed6 Add missing initialiser in e_chil.c 1b4d0e3 do not remove links found in .git directory 531e9dc Windows: Add CRYPT32.LIB to the libraries to link you app with 6385ffd Do not access SSL struct directly in TLS1_get_version and TLS1_get_client_version macros 6546e9b Add SSL_client_version() getter function c408b80 Add some documentation of SSL_CTX_set_tlsext_status_type() ba261f7 Propagate tlsext_status_type from SSL_CTX to SSL b04f947 Fix NPN protocol name list validation c5ebfca Unify <TYPE>_up_ref methods signature and behaviour. 592b6fb Small MSVC build fixes. 4e0e4d2 Fix some missing OBJ_dup failure checks. e073fd1 openssl_{startup,shutdown}.com.in are in the source directory b3c930c Fix various methods declaration in pod file 8a18bc2 Increment size limit for ClientHello messages c32b9dc Fix engine cryptodev: pointer to IV edeb3fd Fix OpenSSL_memdup error handling 1563102 VMS perl: Fix glob output 5f72675 Add some additional NewSessionTicket tests c45d6b2 The NewSessionTicket message is not optional. afdd82f Fix stack constification definitions. 0b2d475 Correct documentation on digest used. f47e564 Fix signer option and support format SMIME. 3ec8a1c Windows: When installing libraries and executables, install .pdb files as well 2c25ebd DJGPP adjustments ae69c7d Move the DJGPP target to its own config. 396ba1c Fix uninitialized variable a263f32 Remove proxy tests. Add verify callback tests. d82c275 Appease ubsan 6302bbd Correctly check for trailing digest options. d535e56 Remove openssl.spec d18ba3c Restore support for ENGINE format keys in apps. 48c1601 Don't use GOST ciphersuites with DTLS. 7c0ef84 Don't leak memory if realloc fails. 3dfcb6a Add a case for 64-bit OS X in config 7ad5fb6 Fix TLSProxy race by adding missing eval f2b9c25 Recommend GH over RT, per team vote. 19252ee make update 538dbbc typo 8fc06e8 Update pkcs8 defaults. 2ab851b Adding missing BN_CTX_(start/end) in crypto/ec/ec_key.c 5a22cf9 Replace cipherlist test 6e3ff63 Make null_compression const cb21df3 Fix V2ClientHello handling. c1176eb Add -signcert to CA.pl usage message. fde2257 Fix i2d_X509_AUX, update docs and add tests 9b5164c Add a couple of checks to prime app. 1480b8a Add -srp option to ciphers command. bfcdd4d crypto/des: remove obsolete functions. 5d8b70a Configurations: engage MIPS64 Poly1305 module. c6b77c1 MIPS64 assembly pack: add Poly1305 module. 6646f69 Configure: replace which() with IPC::Cmd::can_run. c3ad47f windows-makefile.tmpl: minor adjustments. 6d8b3dc util/mkdef.pl: omit ordinals from Windows DLLs. 981b5bb Typo. 6d53100 Fix the docs for ERR_remove_thread_state and ERR_remove_state 21e0017 Restore the ERR_remove_thread_state() API and make it a no-op 06aa885 Have [.VMS]openssl_{startup,shutdown}.com depend on respective *.in ee7fb55 Fix VMS/openssl_{startup,shutddown}.com.in f58a0ac Configure: adhere to $(CROSS_COMPILE)ranlib. c145d19 Configure: make it work with Perl 5.10. c21c783 IRIX fixes. 59a56c4 Add NULL check in i2d_PrivateKey() f7aa318 Don't send signature algorithms when client_version is below TLS 1.2. 3105d69 Fix BIO_eof() for BIO pairs 2e66d3d Fix: failed to open config file if not specified when using CA commands e817315 VMS: support VERBOSE and V in descrip.mms be6bdab Recognise VERBOSE and V as well as HARNESS_VERBOSE 191c0e2 Missing credit in CHANGES 447402e Fix error in the loop of ECDH fbdf029 Free any existing SRTP connection profile 9921b7b Configurations/windows-makefile.tmpl: expand environments early. dccd20d fix tab-space mixed indentation e0d32e9 fix check cb1d435 few missing allocation failure checks and releases on error paths 5cf14ce memset() doesn't take NULL. c38bb72 Add fuzzing! 049f5bb Constify PKCS12_newpass() c95a8b4 Add documentation of PKCS12_newpass() d800d0f Tidy up PKCS12_newpass() fix memory leaks. 708cf5d Only set CMS parameter when encrypting ec5b56f RT3513: req doesn't display attributes using utf8string 4b16fa7 README.PERL: clarify "matching" Perl requirement on Windows. 3992e8c poly1305/asm/poly1305-x86_64.pl: contain symbols within shared lib. 2841165 poly1305/asm/poly1305-x86_64.pl: make it cross-compile. 3732f12 testlib/OpenSSL/Test.pm: address 5.10 warnings. 9a2d2fb test/evp_test.c: exercise different combinations of data misalignment. c0aa8c2 Use default ASN.1 for SEED. 5ff73fb typo 4a8e9c2 Move 3DES from HIGH to MEDIUM 3fd60dc Always try to set ASN.1 parameters for CMS. 50b4a9b GH356: Change assert to normal error fc7f190 Handle no async jobs in libssl 0eadff0 Document inversion ladder in curve25519 fb37410 Script changed; update the generated file. 485b78d Improve heartbeats coding style e8b7c0c Tweak generated warning lines. c3d93da remove unused macros in list -disabled d5e8679 Fix spelling 9d103db support embed in ASN.1 print c7e6ae6 Complete the list of names in doc/ssl/SSL_CTX_load_verify_locations.pod 4e0d184 Fix name length limit check. c73aa30 Check return of PEM_write_* functions and report possible errors e6c5dbc DEFINE_STACK_OF(ASN1_UTF8STRING) moved from ts_lcl.h to asn1.h ad9a056 Handle malloc failures in BIO_accept d5975c8 reject zero block length in PKCS12 keygen 6dccec2 Fix Blake block length b1b3e14 add documentation 3340e8b Fix double free in d2i_PrivateKey(). 16e1b28 GH932: Add more help messages to some apps options. b273fcc Fix the no-tls option ea837d7 Remove stale errors from early connection attempts in a client 1697a81 Allow spaces in filenames when using perl's glob c6cb8e3 Alpha assembly pack: make it work on Linux. f7dc4a3 MIPS assembly pack: fix MIPS64 assembler warnings. 39199fb Configurations/unix-Makefile.tmpl: don't count on -E -P. b4de72b Tru64 fixes. 7b7eb47 Drop duplicate ctx->verify_cb assignment fb015ca Update Diffie-Hellman parameters to IANA standards 6ac8377 Update CHANGES and NEWS for the new release 70428ea Check that we have enough padding characters. 2c7fe4d Add ASN.1 INTEGER tests. 1b96ec1 add ASN1_INTEGER type to d2i_test 106cb95 Add test for CVE-2016-2018 d7ab691 Fix ASN1_INTEGER handling. d202a60 Add documentation for EVP_EncodeInit() and similar functions 2bd5d70 Ensure EVP_EncodeUpdate handles an output length that is too long ee1e3ca Avoid overflow in EVP_EncodeUpdate b7b8e94 Properly own the duplicated string 399de49 Improve comment d227a30 Try 'make install' with one of the Travis configurations ea96ad5 Prevent EBCDIC overread for very long strings 3f35821 Fix encrypt overflow 05aef4b Fix i2d_X509_AUX: pp can be NULL. 5a1f853 GH875: Document -no_check_time Date: Tue Mar 15 15:19:44 2016 +0100 5c4b8c6 Remove confusing comment. 5f18bc5 Issue #719: afce395 Document the addition of OPENSSL_LOCAL_CONFIG_DIR 38add23 Add the possibility for local build file templates b5293d4 Add the possibility to have an extra local OpenSSL configs directory 85e2fe8 Remove personal configs from version control e840868 Secure memory fixes fbaf30d ssl/record/rec_layer_s3.c: fix typo from previous commit. d244dd5 Handle multi-line "written by/for" comments. cba792a Android build fixes. b1a07c3 Remove obsolete defined(__INTEL__) condition. 8e9f1bb chacha/asm/chacha-x86.pl: make it compile on legacy systems. 24c2cd3 Fix spelling in pod files e0f9635 make update b7650c6 Add the adjusted perl scripts to the set of "update" scripts e18cf66 Adjust a last few generators to new license boilerplate and C code style e428f59 Skip blank lines if old copyright comment was removed, and only then 7cafbb4 Fix some X509_STORE macros 77076dc Add checks to X509_NAME_oneline() b33d114 Sanity check buffer length. 295f3a2 Add size limit to X509_NAME structure. 3cd3f00 Remove BIO_dummy, it's old cruft 83f2695 Change 'struct bio_st' in all public header where applicable be4ba1b Add asn1_mac b8c5145 Remove some dead code from EC_GROUP_check() 9d7ec80 Don't use an uninitialised variable in srp application 40a8643 Avoid a NULL ptr deref if group is not set 7001571 Check for a NULL return value from a call to X509_STORE_CTX_new() 138388f Check for failed malloc in BIO_ADDR_new ed3eb5e The x509_name_canon function doesn't check for an error return 3b7a71b Make header signature of CRYPTO_mem_leaks BIO instead of struct bio_st 87a8405 Avoid overflow issues in X509_cmp. a1f4128 Misc tweaks for EBCDIC based on feedback received a1f82f0 Fix EBCDIC problem in conf_def.h 97a982e Fix the tests to work with EBCDIC 4cd5c3f Fix a build error with strict-warnings and CHARSET_EBCDIC e31066f Add the ability to test EBCDIC builds 5fd1478 Fix building with -DCHARSET_EBCDIC e590afd VMS: only explicitely translate names in library C files. 1bfe73d VMS: It seems DEC C doesn't handle certain header files quite right 842dc98 Add aliases for des-ede-ecb and des-ede3-ecb ciphers. e6f2bb6 Fixed scripts order for generate_crypto_objects target 53385e1 crypto/ppccap.c: fix missing declaration warning. fa79c54 crypto/ppccap.c: permit build with no-chacha and no-poly1305. 10a57ad Remove some dead code b375f08 A call to RSA_set0_key had the arguments in the wrong order 6f13737 Client side CKE processing can double free on error b8f1c11 Don't free the BIGNUM passed to BN_mpi2bn 098c1e3 Fix a leak in i2b_PVK 1f64400 make update 08590a8 apps/progs.pl: don't make digests disablable by default a14a740 BIO_free should call method->destroy before free'ing member fields 2bbf0ba Add checks on CRYPTO_new_ex_data return value... with some adaptation to new multi-threading API. 25a807b Add checks on CRYPTO_new_ex_data return value 8fdc99c Fix an error code spelling. 8483a00 various spelling fixes f0c58c3 Add getters for X509_STORE and X509_OBJECT members d5553b4 make update c965487 Implement X509_STORE_CTX_set_current_cert() accessor 68423b1 Fix BIO_set_nbio_accept() b3bd3d5 Don't leak memory on error path in dane_ctx_enable() 34b9acb Free an ASN1_OBJECT in an error path 5e8129f Don't leak an ASN1_OCTET_STRING on error in rsa_cms_encrypt d54ac5c Free memory on error in PKCS7_dataFinal() 460c5e1 Don't leak memory on error in PKCS12_key_gen_uni 8e588e2 Don't leak memory on error in i2b_PVK 204cf94 Don't leak memory on error in b2i_rsa a4e584a Don't leak resource on error in OCSP_url_svcloc_new f08e803 Check that we were actually allocated BIGNUMs in dsa_builtin_paramgen2 2280358 Don't leak EVP_MD_CTX on error path 29f4c35 Don't leak memory on error in cms_RecipientInfo_pwri_crypt d71eb66 Don't leak memory on error in BN_generate_prime_ex 91fb42d Free a BIGNUM on error in BN_mpi2bn b0b6ba2 Don't leak memory on failure to create a mem BIO df0f275 Close the accept socket on error 2bd8c85 Make BIO_sock_error return a proper error code when getsockopt fails d78df5d Reject inappropriate private key encryption ciphers. 4a397f5 Fix set0 reuse test 69664d6 Future proof build_chain() in x509_vfy.c 4c5e6b2 Documentation the changed {RSA,DSA,DH}_set0_* functionality change 1da12e3 RSA, DSA, DH: Allow some given input to be NULL on already initialised keys 3aec886 GH975 Add ex_data functions for X509_STORE 5c001c3 Fix no-gost no-srp no-ec no-dh. d94ce41 Fix enable-ssl-trace no-nextprotoneg. e93836b Fix no-engine no-ui. bfb155c split_send_fragment should always be less than or equal to max_send_fragment dbd5c34 Fix BIO_CTRL_DUP for an SSL BIO 97b0439 Fix passwd seg fault 33ea23d SPARCv9 assembly pack: fine-tune run-time switch. 7936a86 camellia/build.info: fix typo 9547982 Remove dead-code infinite loop 8b12d59 Add ex_data functions for X509_STORE 446ba8d Ensure we check i2d_X509 return val baf1a30 *.der files are binary. 42a9f38 Remove the never-functional no-sct 1e8ead8 Remove some OPENSSL_NO_SHA that snuck in dc3c506 crypto/poly1305/asm: chase overflow bit on x86 and ARM platforms. 5a6694e make update 5122717 Added missing X509_STORE_CTX_set_error_depth() accessor 2036fd5 Document the enhancements for DEPEND and INCLUDE and use a better example 8d34daf Build system: add include directories and dependencies for generators 79356a8 Fix NULL deref in apps/pkcs7 1755d46 API compat macros for renamed X509_STORE_CTX functions 670ad0f s390x assembly pack: cache capability query results. 299ccad crypto/sparc_arch.h: reserve more SPARCv9 capability bits. a82a9f7 chacha/asm/chacha-ppc.pl: get misalignment corner case right on big-endian. acde647 Fix EC_KEY_set_private_key() to call key->group->meth->set_private() 9f13d4d add test for CVE-2016-2109 53e409d In d2i_test return error for malloc failure. c629813 Harden ASN.1 BIO handling of large amounts of data. ddc606c Warn when doing an out-of-source build and finding in-source build artifacts e2ab7fb make update 9f6b22b Enabled DANE only when at least one TLSA RR was added ee85fc1 Don't set peer_tmp until we have finished constructing it 48c1e15 Extensions to d2i_test. f0483bf Fix capi engine for no-dsa 54c010a Fix no-dsa on Windows/VMS 04e381f Fix the indentation of OPENSSL_NO_STDIO in pem.h b04e5c1 Fix no-cmac on Windows/VMS 596d6b7 Unified copyright for test recipes 3f8f728 Add a best effort test to check shared library consistency 2ac7753 Fix CRYPTO_clear_realloc() bug. e38bd94 Update the Configurations READMEs 5951e84 Fix no-ocsp on Windows (and probably VMS) 5d94e5b Remove some unneccessary assignments to argc 3ad4af8 Remove some unused argc assignments dfefe7e Fix a missing return value check in v3_addr bcc3177 Add missing return value check in pkcs8 app e69f2a2 Add missing return value checks 46da5f9 Fix missing break in option parsing 56e2534 Remove some dead code d278284 Fix some code maintenance issues a043d0b BIO socket connect failure was not handled correctly. The state was always set to BIO_CONN_S_OK. 098a238 Fix missing IDEA renames (windows build) c2f312f Copyright consolidation script 9bf6eff Travis: _srcdist, not _srcdir 00deac3 Fix no-ui on Windows ac3d0e1 Copyright consolidation; .pm and Configure 3fb2cf1 Update copyright; generated files. 45c6e23 Remove --classic build entirely f863ad0 Fix no-sock on Windows 2469e76 Include winsock2.h even if compiling no-sock d6e03b7 Don't use select on Windows 505f74c Cascade no-dgram from no-sock in Configure not e_os.h 9fb80e3 Fix no-dgram on Windows e0a6519 Copyright consolidation: perl files ecba1fb Fix warnings installing pod files 3acfc40 Configurations: fix typo in 50-masm.conf. 6944565 evp/aes_aes.c: engage Fujitsu SPARC64 X AES support. 4400f6c sparcv9cap.c: add Fujitsu SPARC64 X AES capability detection. fb65020 Add AES assembly module for Fujitsu SPARC64 X/X+. 38c5674 Configuration: add unsupported masm target. d405aa2 perlasm/x86_64-xlate.pl: make latest ml64 work. 6ca3e6e poly1305/asm/poly1305-x86_64.pl: not all assemblers manage << in constants. f0d484f Typo, asoutflag -> perlasm_scheme 4380095 Only allow Microsoft assembler with no-asm on Windows 1b74165 Build: Make 'test' depend on 'tests' d979e7f Prepare for 1.1.0-pre6-dev git-subtree-dir: openssl git-subtree-split: 04a54629c2bb904e9bd9a1d98381b1259147cc0d
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.